English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.103863
Category:VMware Local Security Checks
Title:VMware ESXi/ESX unauthorized file access through vCenter Server and ESX (VMSA-2013-0016) - Local Version Check
Summary:VMware ESXi and ESX unauthorized file access through vCenter; Server and ESX.
Description:Summary:
VMware ESXi and ESX unauthorized file access through vCenter
Server and ESX.

Vulnerability Insight:
VMware ESXi and ESX contain a vulnerability in the handling of
certain Virtual Machine file descriptors. This issue may allow an unprivileged vCenter Server
user with the privilege 'Add Existing Disk' to obtain read and write access to arbitrary files on
ESXi or ESX. On ESX, an unprivileged local user may obtain read and write access to arbitrary
files. Modifying certain files may allow for code execution after a host reboot.

Unprivileged vCenter Server users or groups that are assigned the predefined role
'Virtual Machine Power User' or 'Resource Pool Administrator' have the privilege
'Add Existing Disk'.

The issue cannot be exploited through VMware vCloud Director.

Affected Software/OS:
VMware ESXi 5.5 without patch ESXi550-201312001

VMware ESXi 5.1 without patch ESXi510-201310001

VMware ESXi 5.0 without patch update-from-esxi5.0-5.0_update03

VMware ESXi 4.1 without patch ESXi410-201312001

VMware ESXi 4.0 without patch ESXi400-201310001

VMware ESX 4.1 without patch ESX410-201312001

VMware ESX 4.0 without patch ESX400-201310001

Solution:
Apply the missing patch(es).

Workaround

A workaround is provided in VMware Knowledge Base article 2066856.

Mitigation

In a default vCenter Server installation no unprivileged users or groups are assigned the
predefined role 'Virtual Machine Power User' or 'Resource Pool Administrator'. Restrict the number
of vCenter Server users that have the privilege 'Add Existing Disk'.

CVSS Score:
4.4

CVSS Vector:
AV:L/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2013-5973
BugTraq ID: 64491
http://www.securityfocus.com/bid/64491
Bugtraq: 20131223 NEW VMSA-2013-0016 VMware ESXi and ESX unauthorized file access through vCenter Server and ESX (Google Search)
http://www.securityfocus.com/archive/1/530482/100/0/threaded
http://jvn.jp/en/jp/JVN13154935/index.html
http://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000123.html
http://osvdb.org/101387
http://www.securitytracker.com/id/1029529
XForce ISS Database: vmware-esx-esxi-cve20135973-sec-bypass(89938)
https://exchange.xforce.ibmcloud.com/vulnerabilities/89938
CopyrightCopyright (C) 2013 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.